104.248.82.134

基本信息:

城市(city): Amsterdam

省份(region): North Holland

国家(country): Netherlands

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.248.82.152	attackspambots	Website hacking attempt	2019-12-17 23:23:02
104.248.82.210	attackspambots	Splunk® : port scan detected: Aug 17 14:42:55 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=104.248.82.210 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54321 PROTO=TCP SPT=36790 DPT=55555 WINDOW=65535 RES=0x00 SYN URGP=0	2019-08-18 07:15:56
104.248.82.210	attack	Splunk® : port scan detected: Jul 22 09:23:16 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=104.248.82.210 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=54321 PROTO=TCP SPT=48609 DPT=55555 WINDOW=65535 RES=0x00 SYN URGP=0	2019-07-22 21:51:03
104.248.82.210	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 19:25:21

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.82.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33282
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.82.134.			IN	A

;; AUTHORITY SECTION:
.			588	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052401 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 25 04:02:44 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 134.82.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.82.248.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.254.220.20	attackbots	Oct 21 22:01:03 DAAP sshd[20870]: Invalid user ethos from 51.254.220.20 port 33932 Oct 21 22:01:03 DAAP sshd[20870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.220.20 Oct 21 22:01:03 DAAP sshd[20870]: Invalid user ethos from 51.254.220.20 port 33932 Oct 21 22:01:05 DAAP sshd[20870]: Failed password for invalid user ethos from 51.254.220.20 port 33932 ssh2 Oct 21 22:04:49 DAAP sshd[20893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.220.20 user=root Oct 21 22:04:51 DAAP sshd[20893]: Failed password for root from 51.254.220.20 port 53455 ssh2 ...	2019-10-22 05:55:04
159.65.81.187	attackspambots	Oct 21 22:59:48 cvbnet sshd[7889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.81.187 Oct 21 22:59:50 cvbnet sshd[7889]: Failed password for invalid user zimbra from 159.65.81.187 port 53894 ssh2 ...	2019-10-22 05:45:20
142.4.204.122	attackbotsspam	Oct 21 23:24:24 SilenceServices sshd[29481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.4.204.122 Oct 21 23:24:26 SilenceServices sshd[29481]: Failed password for invalid user janice from 142.4.204.122 port 42014 ssh2 Oct 21 23:28:04 SilenceServices sshd[30497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.4.204.122	2019-10-22 05:51:35
193.32.160.152	attack	Oct 21 22:05:01 relay postfix/smtpd\[5545\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.152\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.150\]\> Oct 21 22:05:01 relay postfix/smtpd\[5545\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.152\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.150\]\> Oct 21 22:05:01 relay postfix/smtpd\[5545\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.152\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.150\]\> Oct 21 22:05:01 relay postfix/smtpd\[5545\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.152\]: 554 5.7.1 \: Relay access denied\; from=\	2019-10-22 05:43:41
89.248.162.136	attack	Port Scan: TCP/8089	2019-10-22 05:47:08
223.104.65.204	attack	Oct 21 21:55:22 mxgate1 postfix/postscreen[7735]: CONNECT from [223.104.65.204]:51177 to [176.31.12.44]:25 Oct 21 21:55:22 mxgate1 postfix/dnsblog[7965]: addr 223.104.65.204 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 21 21:55:22 mxgate1 postfix/dnsblog[7965]: addr 223.104.65.204 listed by domain zen.spamhaus.org as 127.0.0.3 Oct 21 21:55:22 mxgate1 postfix/dnsblog[7964]: addr 223.104.65.204 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 21 21:55:22 mxgate1 postfix/dnsblog[7963]: addr 223.104.65.204 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 21 21:55:22 mxgate1 postfix/postscreen[7735]: PREGREET 16 after 0.28 from [223.104.65.204]:51177: HELO dzsme.org Oct 21 21:55:22 mxgate1 postfix/postscreen[7735]: DNSBL rank 4 for [223.104.65.204]:51177 Oct x@x Oct 21 21:55:23 mxgate1 postfix/postscreen[7735]: DISCONNECT [223.104.65.204]:51177 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=223.104.65.204	2019-10-22 06:01:51
47.88.168.222	attack	Oct 21 21:59:09 ns381471 sshd[2048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.88.168.222 Oct 21 21:59:11 ns381471 sshd[2048]: Failed password for invalid user alan from 47.88.168.222 port 37388 ssh2 Oct 21 22:04:43 ns381471 sshd[2267]: Failed password for root from 47.88.168.222 port 45034 ssh2	2019-10-22 06:01:12
181.118.37.178	attackbotsspam	2019-10-21 x@x 2019-10-21 21:07:09 unexpected disconnection while reading SMTP command from ([181.118.37.178]) [181.118.37.178]:18039 I=[10.100.18.22]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=181.118.37.178	2019-10-22 05:40:22
92.222.70.236	attack	Oct 21 22:04:45 * sshd[32537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.70.236 Oct 21 22:04:47 * sshd[32537]: Failed password for invalid user !!! from 92.222.70.236 port 59674 ssh2	2019-10-22 05:57:33
179.57.121.10	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 21-10-2019 21:05:23.	2019-10-22 05:29:53
77.70.96.195	attackspam	Oct 21 23:07:19 vpn01 sshd[16356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.70.96.195 Oct 21 23:07:21 vpn01 sshd[16356]: Failed password for invalid user trendimsa1.0 from 77.70.96.195 port 51850 ssh2 ...	2019-10-22 05:33:09
189.155.131.118	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 21-10-2019 21:05:23.	2019-10-22 05:29:32
103.50.5.125	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 21-10-2019 21:05:21.	2019-10-22 05:33:20
46.176.37.169	attack	Telnet Server BruteForce Attack	2019-10-22 06:01:28
95.210.45.30	attack	Oct 21 21:58:45 pornomens sshd\[711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.210.45.30 user=root Oct 21 21:58:47 pornomens sshd\[711\]: Failed password for root from 95.210.45.30 port 42862 ssh2 Oct 21 22:05:17 pornomens sshd\[716\]: Invalid user cynthia from 95.210.45.30 port 13464 Oct 21 22:05:17 pornomens sshd\[716\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.210.45.30 ...	2019-10-22 05:34:51

最近上报的IP列表

104.248.8.215	104.248.84.152	104.248.86.117	104.248.87.173
104.248.88.244	104.248.88.248	104.248.89.248	104.248.91.174
104.253.170.136	104.253.21.70	104.254.235.230	104.36.148.37
104.41.51.10	104.41.58.37	104.42.185.132	104.42.210.226
104.42.52.143	104.42.75.112	104.43.128.222	104.45.11.228